Is It the Beginning of the End For Use-After-Free Exploitation?
Use-after-free bugs have affected Internet Explorer for years. In the past year alone, Microsoft patched 122 IE vulnerabilities, the majority of which were use-after-free bugs. This year Microsoft has...
View ArticlePhishing in a Nutshell: January – March 2018
Unit 42 uncovers over 4,000 URLs from 262 unique domains used in phishing attacks between January and March of 2018. The post Phishing in a Nutshell: January – March 2018 appeared first on Unit 42.
View ArticleThe Old and New: Current Trends in Web-based Threats
Unit 42 investigates the latest trends in web-based threats. The post The Old and New: Current Trends in Web-based Threats appeared first on Unit 42.
View ArticleWeb-based Threats-2018 Q2: U.S. Remains #1 in Malicious Web Addresses, China...
Email Link Analysis from Unit 42 reveals that the United States remain the number one hoster of malicious web addresses for Q2 2018. The post Web-based Threats-2018 Q2: U.S. Remains #1 in Malicious Web...
View ArticleNew Wine in Old Bottle: New Azorult Variant Found in FindMyName Campaign...
New Wine in Old Bottle: New Azorult Variant Found in FindMyName Campaign using Fallout Exploit Kit. The post New Wine in Old Bottle: New Azorult Variant Found in FindMyName Campaign using Fallout...
View ArticleWeb-based Threats-2018 Q3: Malicious URLs and Domains take a Dip
Our Email Link Analysis (ELINK) system is routinely reviewed by our Unit 42 research team. In examining the data it collects, patterns and trends are discovered which helps us discern prevalent web...
View ArticleWeb-based Threats-2018 Q4: France Rises to #1 for Malicious URL Hosting, US...
Our latest research evaluates the data from our Email Link Analysis (ELINK) system and shows France rises to number one for malicious URL hosting, the US to number one for phishing for Web-based...
View ArticleWeb-Based Threats: First Half 2019
The 5th installment in a series of posts tracking web-based threats over time from our Email Link Analysis (ELINK) system., specifically, statistics pertaining to malicious URLs, domains, exploit kits,...
View ArticleUnit 42 Discovers 15 New Vulnerabilities Across Microsoft, Adobe and Apple...
We are credited with discovering 15 new vulnerabilities addressed by MSRC, Adobe Security Bulletin and Apple Security Updates in the last quarter. The post Unit 42 Discovers 15 New Vulnerabilities...
View ArticlePalo Alto Networks Discloses New Attack Surface Targeting Microsoft IIS and...
The technique allows attackers to remotely attack IIS and SQL Server to gain SYSTEM privileges by using Microsoft Jet database engine vulnerabilities. The post Palo Alto Networks Discloses New Attack...
View ArticleParrot TDS: A Persistent and Evolving Malware Campaign
Traffic detection system Parrot has infected tens of thousands of websites worldwide. We outline the scripting evolution of this injection campaign and its scope. The post Parrot TDS: A Persistent and...
View Article
